Share

• Copy link
• Facebook
• X
• Reddit
• Email

Share this article

Join the conversation

Follow us

Add us as a preferred source on Google

Newsletter

Get the Tom's Guide Newsletter

Here at Tom’s Guide our expert editors are committed to bringing you the best news, reviews and guides to help you stay informed and ahead of the curve!

Become a Member in Seconds

Unlock instant access to exclusive member features.

Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors

---

By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

You are now subscribed

Your newsletter sign-up was successful

---

Want to add more newsletters?

Daily (Mon-Sun)

Tom's Guide Daily

Sign up to get the latest updates on all of your favorite content! From cutting-edge tech news and the hottest streaming buzz to unbeatable deals on the best products and in-depth reviews, we’ve got you covered.

Signup +

Weekly on Thursday

Tom's AI Guide

Be AI savvy with your weekly newsletter summing up all the biggest AI news you need to know. Plus, analysis from our AI editor and tips on how to use the latest AI tools!

Signup +

Weekly on Friday

Tom's iGuide

Unlock the vast world of Apple news straight to your inbox. With coverage on everything from exciting product launches to essential software updates, this is your go-to source for the latest updates on all the best Apple content.

Signup +

Weekly on Monday

Tom's Streaming Guide

Our weekly newsletter is expertly crafted to immerse you in the world of streaming. Stay updated on the latest releases and our top recommendations across your favorite streaming platforms.

Signup +

---

Join the club

Get full access to premium articles, exclusive features and a growing list of member rewards.

Explore

---

An account already exists for this email address, please log in.

Subscribe to our newsletter

Researchers at Russian antivirus maker Doctor Web have determined that at least 28 Android devices, including two Lenovo models, ship from the factory with preinstalled malware that downloads for malware, adware and other suspicious programs without the user's permission.

The malware, Android.DownLoader.473.origin, was found embedded in the firmware on 26 off-brand phones, although the true number of affected devices may be even larger. The malware downloads and installs more apps when the device uses Wi-Fi to connect to the internet. One of the secondary apps, called H5GameCenter, runs ads on top of applications. To make it even more annoying, the downloader will reinstall an app if you uninstall it.

A second adware Trojan, Android.Sprovider.7, was found to infect Lenovo's low-end A319 and midrange A6000. This downloader also installs unwanted programs, and displays ads over other apps. It also creates a shortcut on the home-screen status bar and can make calls to phone numbers.

MORE: Best Android Antivirus Apps

Per Doctor Web, the known infected models are:

• MegaFon Login 4 LTE
• Irbis TZ85
• Irbis TX97
• Irbis TZ43
• Bravis NB85
• Bravis NB105
• SUPRA M72KG
• SUPRA M729G
• SUPRA V2N10
• Pixus Touch 7.85 3G
• Itell K3300
• General Satellite GS700
• Digma Plane 9.7 3G
• Nomi C07000
• Prestigio MultiPad Wize 3021 3G
• Prestigio MultiPad PMT5001 3G
• Optima 10.1 3G TT1040MG
• Marshal ME-711
• 7 MID
• Explay Imperium 8
• Perfeo 9032_3G
• Ritmix RMD-1121
• Oysters T72HM 3G
• Irbis tz70
• Irbis tz56
• Jeka JK103

"[C]ybercriminals generate their income by increasing application download statistics and by distributing advertising software," the Doctor Web researchers wrote. "Therefore, Android.DownLoader.473.origin and Android.Sprovider.7 were incorporated into Android firmware because dishonest outsourcers who took part in creation of Android system images decided to make money on users."

The researchers also wrote that manufacturers have been notified.

It's notable that Lenovo, a big-name manufacturer, is afffected. But we've seen other known brands, such as Xiaomi, release phones with malware before. And as we've recommended before, stop buying cheap Chinese handsets -- it's not uncommon to find malware on them right out of the box.

• Best Android-Only Apps You Can't Find on iPhone
• Best Encrypted Messaging Apps
• 20 Best Android Apps for Kids